- Security Analyst
- Flexible on salary for the right person
- Manchester - a mix of onsite and remote working
Our Manchester based client are currently on the lookout for a Security Analyst to join their team to work with key stakeholders and be able to operate as a key link between security and development. An understanding of coding will be beneficial.
Key Duties and responsibilities:
- Reviewing application security and code analysis to ensure that our applications are built securely.
- Conducting manual and automated source code reviews
- Performing Dynamic Application Security Testing
- Working alongside the Engineering team to provide security advice and guidance during the development and build phase
- Identifying any vulnerabilities or security flaws within the applications and reporting these appropriately
The following skills and expereince will be beneficial for this role:
- Ideally have familiarity with testing methodologies and tooling and as DAST, SAST, SBOM, SCA or Experienced in conducting Security reviews of software applications using industry recognised methodologies, SBOM, SCA, SAST, DAST
- Experienced in conducting threat modelling of proposed application solutions
- Experienced in implementing automated security tooling such as SAST tooling within a CI/CD pipeline
- Experienced in reviewing code written in common programming languages such as Java and C#. Ideally have experience in coding in Java or C# but not essential.
- Experience of working within Security Frameworks such as ISO27001, PCI, Cyber Essentials
Someone on a junior level who meets some but not all the requirements would be considered for the role